Secunia: Security Chief-Scanned, Prioritized, and Secured

Peter Colsted, CEO
All types of enterprises, from small to large, currently face the challenge of managing vulnerable software products within their IT infrastructure. Secunia, a Copenhagen-based company, helps IT operations teams deal with issues pertaining to vulnerable software within their IT infrastructure—issues that cannot be handled manually within organizations. As an Independent Software Vendor (ISV) and an expert solution provider for Microsoft platforms, Secunia’s products provide intelligence on software vulnerabilities and enable organizations to implement required strategies for two major security disciplines: vulnerability management and patch management. The company’s Vulnerability Intelligence Manager (VIM) provides prioritized, verified vulnerability intelligence to security teams in mid-size and large organizations.

The Corporate Software Inspector (CSI), is an award-winning patch management solution, which is unique in that it delivers vulnerability intelligence, vulnerability scanning, patch creation, and patch deployment integration. Because the solution integrates seamlessly with Microsoft System Center 2012 and WSUS, customers are able to do their patching directly from one console, improving the ROSI on their systems management product.According to Peter Colsted, CEO, Secunia, about 66 percent of the 50 most popular programs on private PCs comes from Microsoft, but those 66 percent of programs only represent 24 percent of the vulnerabilities detected in them.


A majority of our customers use Microsoft’s systems management products, so we naturally make sure that we follow what Microsoft do, and take that into consideration when we develop our products to ensure that they are continuously aligned

This means that, while non-Microsoft programs like Oracle, Java, and Adobe only make up 34 percent of the programs, they represent 76 percent of the vulnerabilities.

Consequently, it is a key to ensure that all non-Microsoft programs are patched diligently by private and corporate users alike to protect the individual PC, as well as the corporate network it may be connected to. While Microsoft programs are updated automatically for the most part, this is not the case for non-Microsoft programs, and that is why organizations need automation in their efforts to apply the necessary security updates in their infrastructure. By integrating with Microsoft Windows Server Update Services (WSUS) and Microsoft System Center Configuration Manager (SCCM), Secunia’s CSI facilitates easy updates of third-party programs. “A majority of our customers use Microsoft’s systems management products, so we naturally make sure that we follow what Microsoft do, and take that into consideration when we develop our products to ensure that they are continuously aligned,” says Colsted.

Secunia’s Corporate Software Inspector (CSI) first scans the customer’s infrastructure and identifies all software that is installed on every client and every server, including the third-party software. It then compares the scan results with Secunia’s vulnerability database and tells the customer which software is insecure. It also allows customers to prioritize the products they want to patch.

Secunia focuses at serving three major industry segments—Financial, Government, and Energy & Utilities. With solutions available in both cloud and on premise, the company has garnered major clients like Tucson Electric Power Company (TEP), Siemens AG, Bankart, Banco de México, European Space Agency (ESA), and the North Carolina Department of Transportation.

Secunia’s solution is unlike any other available. With its unique combination of intelligence from the company’s renowned vulnerability database, the non-intrusive, authenticated scan, a very comprehensive patch catalogue, and patch deployment integration, Secunia’s customers are able to assess risk and remediate the issues, thereby strengthening their security posture substantially. Secunia has been expanding its market in the U.S. and establishing new partnerships in Europe, the Middle East, and APAC.

Company
Secunia

Headquarters
Copenhagen, Denmark

Management
Peter Colsted, CEO

Description
A leading provider of IT security solutions to control vulnerability threats and risks using their unique components: Vulnerability Management and Patch Management.